From the biometrics of one million being exposed, to new Microsoft Bluekeep threats, Threatpost discusses the top news of the week.
Link: https://threatpost.com/news-wrap-dejablue-bugs-and-biometrics-data-breaches/147430/
Tag: Hacks
Clickjacking Evolves to Hook Millions of Visitors to Top Sites
Researchers said that clickjacking is a threat that’s evolving, with new tactics just starting to emerge.
Link: https://threatpost.com/clickjacking-millions-top-sites/147367/
Fingerprints of 1M Exposed in Public Biometrics Database
A publicly accessible database exposed the fingerprints and facial recognition information of millions, thrusting biometrics security into the spotlight once again.
Link: https://threatpost.com/fingerprints-of-1m-exposed-in-public-biometrics-database/147345/
British Airways E-Ticketing Flaw Exposes Passenger Flight, Personal Data
A vulnerability in British Airways’ e-ticketing system could enable a bad actor to view passengers’ personal data or change their booking information.
DEF CON 2019: Picture Perfect Hack of a Canon EOS 80D DSLR
Session shows how researchers found multiple vulnerability in Canon firmware that can be used in a malware attack.
Link: https://threatpost.com/hack-of-a-canon-eos-80d-dslr/147214/
Driver Disaster: Over 40 Signed Drivers Can’t Pass Security Muster
Dozens of insecure drivers from 20 vendors illustrate widespread weaknesses when it comes to kernel protection.
Link: https://threatpost.com/driver-disaster-over-40-signed-drivers-cant-pass-security-muster/147199/
DEF CON 2019: New Class of SQLite Exploits Open Door to iPhone Hack
Researchers exploit a SQLite memory corruption issue outside of a browser.
Link: https://threatpost.com/sqlite-exploits-iphone-hack/147203/
DEF CON 2019: MacOS Gets a Malware Beatdown in Attack Demo
Patrick Wardle proves that signature-based anti-malware protection on Macs is woefully inadequate when fending off modern attacks.
Link: https://threatpost.com/macos-gets-a-malware-beatdown/147186/
Hack of High-End Hotel Smart Locks Shows IoT Security Fail
LAS VEGAS – A vulnerability in a popular IoT lock key – used chiefly by a high-end hotel in Europe – allowed researchers to break into hotel rooms. The locks in question are dubbed “mobile keys” because of their reliance on mobile phones as opposed to card-based access such as those based on mag-strips and […]
Link: https://threatpost.com/hack-of-high-end-hotel-smart-locks-shows-iot-security-fail/147178/
DEF CON 2019: Researchers Demo Hacking Google Home for RCE
Researcher show how they hacked Google Home smart speakers using the Megellan vulnerability.
Link: https://threatpost.com/def-con-2019-hacking-google-home/147170/